Mastouille

0 message0 participant0 message aujourd’hui

Anonymous 🐈️🐾☕🍵🏴🇵🇸 :af:2025-02-26 (Wednesday): <a href="https://kolektiva.social/tags/XLoader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#XLoader</a> (<a href="https://kolektiva.social/tags/Formbook" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Formbook</a>) distributed through <a href="https://kolektiva.social/tags/malspam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malspam</a>. The email has an attached PDF document. The PDF has links for a ZIP download, and the ZIP contains files that use DLL side-loading for XLoader.<a href="https://bit.ly/4bgKRU8" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://bit.ly/4bgKRU8</a>

Brad2024-08-12 (Monday): <a href="https://infosec.exchange/tags/XLoader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#XLoader</a>/#Formbook infection. As I've been restoring older pages on my blog with the new password scheme for the zip archives, I'm astounded at the amount of pages and details I used to post.With that in mind, I did a blog post more in the old style, with images and IOCs listed on the blog page.Details at: <a href="https://www.malware-traffic-analysis.net/2024/08/12/index.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.malware-traffic-analysis.net/2024/08/12/index.html</a>

Infoblox Threat IntelWe just released a landscape review of Registered DGAs. We review the many ways threat actors are leveraging these algorithms -- including malware, phishing, scams, porns, you name it. Our RDGA detectors find tens of thousands of domains every day, and we've seen the use continue to rise over the last several years. Most folks aren't even aware since actors are doing this in DNS and it often isn't obvious. <a href="https://infosec.exchange/tags/dns" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#dns</a> <a href="https://infosec.exchange/tags/threatintel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatintel</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/cybercrime" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybercrime</a> <a href="https://infosec.exchange/tags/infoblox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infoblox</a> <a href="https://infosec.exchange/tags/RDGA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RDGA</a> <a href="https://infosec.exchange/tags/DGA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DGA</a> <a href="https://infosec.exchange/tags/DDGA" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DDGA</a> <a href="https://infosec.exchange/tags/malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#malware</a> <a href="https://infosec.exchange/tags/phishing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#phishing</a> <a href="https://infosec.exchange/tags/scams" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#scams</a> <a href="https://infosec.exchange/tags/infoblox" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infoblox</a> <a href="https://infosec.exchange/tags/infobloxthreatintel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infobloxthreatintel</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/threatactor" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatactor</a> <a href="https://infosec.exchange/tags/c2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#c2</a> <a href="https://infosec.exchange/tags/revolverrabbit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#revolverrabbit</a> <a href="https://infosec.exchange/tags/threatintelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatintelligence</a> <a href="https://infosec.exchange/tags/cyber" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyber</a> <a href="https://infosec.exchange/tags/cyberintelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyberintelligence</a> <a href="https://infosec.exchange/tags/xloader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#xloader</a> <a href="https://infosec.exchange/tags/formbook" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#formbook</a> <a href="https://infosec.exchange/tags/abusedtld" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#abusedtld</a> <a href="https://insights.infoblox.com/resources-research-report/infoblox-research-report-registered-dgas-the-prolific-new-menace-no-one-is-talking-about" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://insights.infoblox.com/resources-research-report/infoblox-research-report-registered-dgas-the-prolific-new-menace-no-one-is-talking-about</a>

Xavier «X» Santolaria :verified_paw: :donor:📨 Latest issue of my curated <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> and <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> list of resources for week #34/2023 is out! It includes the following and much more:Before jumping into this week’s infosec news, I wanted to let you guys know that this newsletter has just achieved its 1,000th subscriber! 🥳 I’m so humbled and grateful to all of you who regularly read this list.➝ 🇫🇷 🔓 <a href="https://infosec.exchange/tags/Databreach" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Databreach</a> at French govt agency exposes info of 10 million people ➝ 🔓 <a href="https://infosec.exchange/tags/Kroll" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Kroll</a> data breach exposes info of <a href="https://infosec.exchange/tags/FTX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FTX</a>, <a href="https://infosec.exchange/tags/BlockFi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BlockFi</a>, <a href="https://infosec.exchange/tags/Genesis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Genesis</a> creditors ➝ 🏆 🔓 <a href="https://infosec.exchange/tags/MOVEit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MOVEit</a>, the biggest hack of the year, by the numbers ➝ 🇫🇮 🔓 HUS confirms data breach by ex-staff member, hundreds of patients' data compromised ➝ 🇩🇰 🔓 <a href="https://infosec.exchange/tags/Hosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Hosting</a> firm says it lost all customer data after <a href="https://infosec.exchange/tags/ransomware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ransomware</a> attack ➝ 🔓 🐥 Scraped data of 2.6 million <a href="https://infosec.exchange/tags/Duolingo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Duolingo</a> users released on hacking forum ➝ 🔓 <a href="https://infosec.exchange/tags/Ivanti" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Ivanti</a> warns of new actively exploited <a href="https://infosec.exchange/tags/MobileIron" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MobileIron</a> zero-day bug ➝ 🇯🇵 ⌚️ Japanese watchmaker <a href="https://infosec.exchange/tags/Seiko" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Seiko</a> breached by <a href="https://infosec.exchange/tags/BlackCat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BlackCat</a> ransomware gang ➝ 🇺🇸 🔓 <a href="https://infosec.exchange/tags/Tesla" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Tesla</a> notifies employees of data breach ➝ 🇰🇵 North Korean APT Hacks Internet Infrastructure Provider via ManageEngine Flaw ➝ 🇨🇳 <a href="https://infosec.exchange/tags/Microsoft" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Microsoft</a> says Chinese hacking crew is targeting <a href="https://infosec.exchange/tags/Taiwan" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Taiwan</a> ➝ 🇺🇸 💰 <a href="https://infosec.exchange/tags/FBI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FBI</a> Finds 1,580 Bitcoin in <a href="https://infosec.exchange/tags/Crypto" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Crypto</a> Wallets Linked to North Korean Hackers ➝ 🇦🇺 💰 Australian Lender Latitude Financial Reports AU$76 Million <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> Costs ➝ 🇰🇵 🇰🇷 North Korean hackers target US-South Korea military drills, police say ➝ 🇺🇸 🚀 <a href="https://infosec.exchange/tags/Pentagon" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Pentagon</a> urges US space companies to stay vigilant against foreign intelligence ➝ 🇬🇧 ⚖️ Two <a href="https://infosec.exchange/tags/LAPSUS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LAPSUS</a>$ Hackers Convicted in London Court for High-Profile Tech Firm Hacks ➝ 🇺🇸 🇷🇺 Two founders behind Russian crypto mixer Tornado Cash charged by US federal courts ➝ 🇺🇸 🇪🇺 US tech firms offer data protections for Europeans to comply with EU big tech rules ➝ 🇧🇷 🗳️ Brazilian Hacker Claims <a href="https://infosec.exchange/tags/Bolsonaro" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Bolsonaro</a> Asked Him to Hack Into the Voting System Ahead of 2022 Vote ➝ 🩹 🦈 <a href="https://infosec.exchange/tags/FBI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FBI</a>: Patches for Recent <a href="https://infosec.exchange/tags/Barracuda" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barracuda</a> ESG Zero-Day Ineffective ➝ 🦠 New <a href="https://infosec.exchange/tags/Malware" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Malware</a> Turns <a href="https://infosec.exchange/tags/Windows" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Windows</a> and <a href="https://infosec.exchange/tags/macOS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#macOS</a> Devices into Proxy Nodes ➝ 🍏 📝 New Variant of <a href="https://infosec.exchange/tags/XLoader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#XLoader</a> macOS Malware Disguised as 'OfficeNote' Productivity App ➝ 🪪 🇸🇾 Researchers Uncover Real Identity of CypherRAT and CraxsRAT Malware Developer ➝ 🤖 🔐 <a href="https://infosec.exchange/tags/Google" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Google</a> Workspace Introduces New AI-Powered Security Controls ➝ 🔐 🌀 <a href="https://infosec.exchange/tags/Bitwarden" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Bitwarden</a> releases free and open-source E2EE Secrets Manager ➝ 💬 🔐 Meta plans to roll out default end-to-end encryption for Messenger by the end of the year ➝ 💡 🛜 TP-Link smart bulbs can let hackers steal your WiFi password ➝ 🔓 📂 <a href="https://infosec.exchange/tags/WinRAR" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WinRAR</a> flaw lets hackers run programs when you open RAR archives 📚 This week's recommended reading is: "Data and Goliath: The Hidden Battles to Collect Your Data and Control Your World" by Bruce Schneier Subscribe to the <a href="https://infosec.exchange/tags/infosecMASHUP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosecMASHUP</a> newsletter to have it piping hot in your inbox every week-end ⬇️<a href="https://infosec-mashup.santolaria.net/p/infosec-mashup-week-342023" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://infosec-mashup.santolaria.net/p/infosec-mashup-week-342023</a>

Recherches récentes

Options de recherche

Administré par :

Statistiques du serveur :

#XLoader